Axiosys: Security Vulnerabilities
Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBit function in mp4mux.
CVSS Score
8.8
EPSS Score
0.004
Published
2022-10-03
Bento4 v1.6.0-639 was discovered to contain a memory leak in the AP4_AvcFrameParser::Feed function in mp4mux.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-10-03
Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBits function in mp4mux.
CVSS Score
8.8
EPSS Score
0.004
Published
2022-10-03
Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_SttsAtom::Create function in mp42hls.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-03
Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor::ProcessFragments function in mp4decrypt.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-03
Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_AtomFactory::CreateAtomFromStream function in mp4split.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-03
Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_Processor::Process function in the mp4encrypt binary.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-03
Bento4 v1.6.0-639 was discovered to contain a segmentation violation in the mp4fragment component.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-03
An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_File::ParseStream in Core/Ap4File.cpp, which is called from AP4_File::AP4_File.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-09-30
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_Array<AP4_ElstEntry>::EnsureCapacity in Core/Ap4Array.h.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-09-30